Bug 165962

Summary:

REGRESSION: HipChat and Mail sometimes hang beneath JSC::Heap::lastChanceToFinalize()

Product:

WebKit

Reporter:

Michael Saboff <msaboff>

Component:

JavaScriptCore

Assignee:

Michael Saboff <msaboff>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

benjamin, cdumez, cmarcelo, commit-queue, dbates, ggaren

Priority:

Keywords:

InRadar

Version:

WebKit Nightly Build

Hardware:

Unspecified

OS:

Unspecified

Attachments:

Description	Flags
Patch	none
Addressed Phil's comments and fixed m_condition ASSERTs	fpizlo: review+

Description Michael Saboff 2016-12-16 11:07:22 PST

There is an inherent race when waiting on the condition variable and the timeout fires.  The waitFor() can timeout just before getting a notification from another thread.

AutomaticThread::start() uses a condition variable to wait for work from another thread.  The other thread waits for the machine thread to respond to the notification, but instead it goes to sleep since it doesn't see the notification.

Comment 1 Michael Saboff 2016-12-16 11:24:10 PST

Created attachment 297335 [details]
Patch

Comment 2 Filip Pizlo 2016-12-16 11:43:30 PST

Comment on attachment 297335 [details]
Patch

View in context: https://bugs.webkit.org/attachment.cgi?id=297335&action=review

> Source/WTF/wtf/AutomaticThread.cpp:50
> +    m_condition.notifyOne();

This is sort of wrong since it makes notifyOne mean notifyTwo.

Programs that use notifyOne often rely on the bounded nature of the wake-up.  I think that one solution is to simply move this call to the bottom of the method: only m_condition.notifyOne() if we did not find any threads to wake up ourselves.

> Source/WTF/wtf/AutomaticThread.cpp:212
> +                        if (!awokenByNotify && m_isWaiting) {
> +                            m_isWaiting = false;

Do we still need awokenByNotify?

Comment 3 Michael Saboff 2016-12-16 11:47:20 PST

(In reply to comment #2)
> Comment on attachment 297335 [details]
> Patch
> 
> View in context:
> https://bugs.webkit.org/attachment.cgi?id=297335&action=review
> 
> > Source/WTF/wtf/AutomaticThread.cpp:50
> > +    m_condition.notifyOne();
> 
> This is sort of wrong since it makes notifyOne mean notifyTwo.
> 
> Programs that use notifyOne often rely on the bounded nature of the wake-up.
> I think that one solution is to simply move this call to the bottom of the
> method: only m_condition.notifyOne() if we did not find any threads to wake
> up ourselves.

That makes sense.  I'll make that change.

> > Source/WTF/wtf/AutomaticThread.cpp:212
> > +                        if (!awokenByNotify && m_isWaiting) {
> > +                            m_isWaiting = false;
> 
> Do we still need awokenByNotify?

No.  I'll remove it.

Comment 4 Michael Saboff 2016-12-16 12:05:40 PST

Created attachment 297339 [details]
Addressed Phil's comments and fixed m_condition ASSERTs

Comment 5 Michael Saboff 2016-12-16 14:26:46 PST

Committed r209938: <http://trac.webkit.org/changeset/209938>

Comment 6 Geoffrey Garen 2017-01-11 16:01:01 PST

<rdar://problem/29229439>